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Claim Amendment Summary 

Claims pending 

• At time of the Action: Claims 1-3, 5-13, 15, 16, 19-33 and 35-42. 

• After this Response: Claims 1-3, 5-13, 15, 16, 19-33 and 35-42. 
Canceled or Withdrawn claims: none. 

Amended claims: 22 and 35. 
New claims: none 

Please amend claims 22 and 35 as follows: 

1. (PREVIOUSLY PRESENTED) A method of updating keys that 
decrypt login tickets that log a user into multiple sites, the method comprising: 

generating a first key having a first version number; 

providing tickets encoded consistent with the first key, the ticket having a 
version number corresponding to the first version number; 

generating a second key having a second version number; and when the 
second key becomes current at a site, providing tickets encoded consistent with the 
second key, the ticket having a version number corresponding to the second version 
number; 

wherein said keys comprise key data and executable code for decrypting 

tickets* 

2. (ORIGINAL) The method of claim 1 wherein a different key is 
provided to each site, and wherein each key is encrypted for decoding at one site. 

3. (ORIGINAL) The method of claim 1 and further including generating 
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a configuration file to track keys for each site. 

4. (CANCELED). 

5. (PREVIOUSLY PRESENTED) A computer readable medium 
having instructions stored thereon for causing a computer to perform a method of 
updating keys that decrypt login tickets that log a user into multiple sites, the method 
comprising: 

generating a first key having a first version number, 

providing tickets encoded consistent with the first key, the ticket having a 
version number corresponding to the first version number; 

generating a second key having a second version number; and 

when the second key becomes current at a site, providing tickets encoded 
consistent with the second key, the ticket having a version number corresponding to 
the second version number, 

wherein said keys comprise key data and executable code for decrypting 

tickets. 

6. (ORIGINAL) A method of generating keys that decrypt login tickets 
that log a user into multiple sites, the method comprising; 

generating a first key in the form of an executable having a first version 
number, 

generating a second key in the form of an executable having a second version 
number, and 

providing an indication to a login server identifying which key is current for 
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each site such that the tickets are properly encoded. 

7, (ORIGINAL) The method of claim 6 and further comprising 
distributing the key to multiple login servers in a secure manner. 

8. (ORIGINAL) The method of claim 6 and further comprising updating 
a configuration file to track keys for each site, 

9. (ORIGINAL) A computer readable medium having instructions 
stored thereon for causing a computer to perform a method of generating keys that 
decrypt login tickets that log a user into multiple sites, the method comprising; 

generating a first key in the form of an executable having a first version 
number; 

generating a second key in the form of an executable having a second version 
number; and 

providing an indication to a login server identifying which key is current for 
each site such that the tickets are properly encoded. 

10, (ORIGINAL) A system that generates keys that decrypt login tickets 
that log a user into multiple sites, the system comprising: 

a key generator that generates a first key in the form of an executable having a 
first version number and generates a second key in the form of an executable having 
a second version number; and 

means for providing information to a login server identifying which key is 
current for each site such that the tickets are properly encoded. 
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11. (PREVIOUSLY PRESENTED) A method of updating keys that 
decrypt login tickets that log a user into multiple sites, the method comprising: 

generating a tiew key with an incremented version number; 

sending the new key to a partner site for use in decoding tickets with the 
incremented version number; 

updating key and version information for a login server; and 

generating tickets decodable by the new key when an indication that a key 
having a previous version number has expired; 

wherein said keys comprise key data and executable code for decrypting 

tickets. 

12. (PREVIOUSLY PRESENTED) A computer readable medium 
having instructions stored thereon for causing a computer to perform a method of 
updating keys that decrypt login tickets that log a user into multiple sites, the method 
comprising; 

generating a new key with an incremented version number; 

sending the new key to a partner site for use in decoding tickets with the 
incremented version number; 

updating key and version information for a login server; and 

generating tickets decodable by the new key when an indication that a key 
having a previous version number has expired; 

wherein said keys comprise key data and executable code for decrypting 

tickets. 
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1 3 . (PREVIOUSLY PRESENTED) A method of updating a key used to 
decrypt tickets used to log into a site, the method comprising: 

receiving an updated key with a new version number; 

setting a time for an old current key having an old version number to expire; 

making the updated key the current key; 

wherein at least one of said keys comprise executable code for making the 
updated key the current key. 

14. (CANCELED). 

15. (ORIGINAL) The method of claim 13 and further comprising 
redirecting users attempting to log into the site using the old current key. 

16. (PREVIOUSLY PRESENTED) A computer readable medium 
having instructions stored thereon for causing a computer to perform a method of 
updating a key used to decrypt tickets used to log into a site, die method comprising: 

receiving an updated key with a new version number; 

setting a time for an old current key having an old version number to expire; 

making the updated key the current key; 

wherein wherein at least one of said keys comprise executable code for 
making the updated key the current key. 

17. (CANCELED). 

18. (CANCELED). 
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19. (ORIGINAL) A method of managing keys used to decrypt tickets for 
logging onto a site, the method comprising: 

receiving a first key with a first version number; 
encrypting the first key using a hardware address; 
changing a current key variable to the first version number, 
receiving a new key with an incremented version number; 
encrypting the new key using a hardware address; and 
identifying the new key as the current key. 

20. (PREVIOUSLY PRESENTED) The method of claim 19 and further 
comprising setting a time for the first key identifying when such key may no longer 
be used, 

21. (ORIGINAL) The method of claim 20 wherein a user currently 
logged in may continue to use the first key until the time expires. 

22. (CURRENTLY AMENDED) The method of claim 20 wherein a 
new user may only use a ticket corresponding to the second key when the second key 
is made the current key, 

23. (ORIGINAL) The method of claim 20 wherein the time is set to a 
reauthorization time determined by the site, 

24. (ORIGINAL) The method of claim 19 wherein a new user using a 
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previous version ticket will be redirected to obtain a ticket corresponding to the new 
key following the new key being identified as the current key. 

25. (ORIGINAL) The method of claim 19 wherein the new key is 
identified as the current key by changing the current key variable to the second 
version number. 

26. (ORIGINAL) A computer readable medium having instructions 
stored thereon for causing a computer to perform a method of managing keys used to 
decrypt tickets for logging onto a site, the method comprising: 

receiving a first key with a first version number; 
encrypting the first key using a hardware address; 
changing a current key variable to die first version number, 
receiving a new key with an incremented version number; 
encrypting the new key using a hardware address; and 
identifying the new key as the current key. 

27. (PREVIOUSLY PRESENTED) A method of updating keys used to 

decrypt tickets used to log into multiple sites on a network, the method comprising: 

< 

generating a new key with a new version number to take the place of an old 
key with an old version number; 

storing the new key on a site to be logged into by a user, 

changing a current key indication to the new key; 

allowing current logged in users to continue using the old key; and 

redirecting new users to a login server to obtain a ticket consistent with the 
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new key; 

wherein keys are generated in an executable form which includes key 
information as well as code for decrypting tickets using the key information* 

28. (ORIGINAL) The method of claim 27 wherein the old key may be 
used by current logged in users for a predetermined amount of time. 

29. (ORIGINAL) The method of claim 28 wherein the predetermined 
amount of time is no more than a reauthorization time by which a current user is 
normally required to provide login information. 

30. (ORIGINAL) The method of claim 28 wherein the predetermined 
amount of time may be set to zero to force all current and new users to login with a 
ticket consistent with the new key version. 

31. (ORIGINAL) The method of claim 27 wherein the ticket contains a 
version number consistent with the version number of the key which can decrypt it 

32. (ORIGINAL) The method of claim 27 wherein keys are encrypted by 
the site using a hardware address, and stored by the site. 

33. (ORIGINAL) The method of claim 27 wherein a new key is 
generated based on a request of the site. 

34. (CANCELED). 
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35, (CURRENTLY AMENDED) The method of claim 27 wherein the 
keys are generated by an authentication server, med and are distributed to multiple 
login servers for providing login tickets. 

36, (PREVIOUSLY PRESENTED) A computer readable medium 
having instructions stored thereon for causing a computer to perform a method of 
updating keys used to decrypt tickets used to log into multiple sites on a network, the 
method comprising: 

generating a new key with a new version number to take the place of an old 
key with an old version number, 

storing the new key on a site to be logged into by a user, 

changing a current key indication to the new key; 

allowing current logged in users to continue using the old key; and 

redirecting new users to a login server to obtain a ticket consistent with the 
new key 3 

wherein the keys comprise key data and executable code for decrypting 

tickets. 

37, (PREVIOUSLY PRESENTED) A method of logging on to multiple 
sites, the method comprising: 

sending a first login ticket to a desired site, wherein the login ticket is 
encrypted to be decoded by a first key having a first version number; 
receiving an indication that the first key has expired; 

obtaining a second login ticket from an authentication server, wherein the 
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second login ticket is encrypted consistently with a new key having a second version 
number; and 

sending the second login ticket to the site to log into the site; 

wherein the keys comprise key data and executable code for decrypting 

tickets. 

38. (ORIGINAL) The method of claim 37 wherein the tickets contain a 
version number which is readable without decryption. 

39. (ORIGINAL) The method of claim 38 wherein the version number is 
a one digit Hex 5 integer. 

40. (ORIGINAL) The method of claim 38 wherein the encrypted ticket 
comprises an unencrypted version number, and encrypted information sufficient to 
log a user into a desired site. 

41. (PREVIOUSLY PRESENTED) A computer readable medium 
having instructions stored thereon for causing a computer to perform a method of 
logging on to multiple sites, the method comprising: 

sending a first login ticket to a desired site, wherein the login ticket is 
encrypted to be decoded by a first key having a first version number; 

receiving an indication that the first key has expired; 

obtaining a second login ticket from an authentication server, wherein the 
second login ticket is encrypted consistently with a new key having a second version 
number, and 
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sending the second login ticket to the site to log into the site; 

wherein the keys comprise key data and executable code for decrypting 



tickets. 



42. (PREVIOUSLY PRESENTED) An encrypted ticket for use in 
logging on to a website, the ticket comprising: 

an unencrypted version number corresponding to a key version number stored 
on the website; and 

an encrypted string identifying the website and information, which when 
decrypted using the key having the same version number authenticates the user for 
logging the user into the website; 

wherein the key comprises executable code for decrypting tickets. 
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